CVE-2013-2792

Published: Aug 9, 2013Modified: Apr 29, 2026

7.1

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:C

Exploitability: 8.6 / Impact: 6.9

Source: NVD

Description

Schweitzer Engineering Laboratories (SEL) SEL-2241, SEL-3505, and SEL-3530 RTAC master devices allow remote attackers to cause a denial of service (infinite loop) via a crafted DNP3 TCP packet.

Affected (8)

Products: Selinc: Sel 2241, Sel 3505, Sel 3530, Sel 3530 4

4 products

Configuration A

8 vulnerable

Vulnerable Software	Affected Versions
Selinc Sel 2241	Version r113-v0-z001001-d20110721
Selinc Sel 2241	Version r123-v0-z002001-d20130117
Selinc Sel 3505	Version r119-v0-z001001-d20120720
Selinc Sel 3505	Version r123-v0-z002001-d20130117
Selinc Sel 3530	Version r100_-v0-z001001-d20090915
Selinc Sel 3530	Version r123-v0-z002001
Selinc Sel 3530 4	Version r107-v0-z001001-d20100818
Selinc Sel 3530 4	Version r123-v0-z002001-d20130117

Related CWEs

CWE-20

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (2)

http://ics-cert.us-cert.gov/advisories/ICSA-13-219-01

Source: ics-cert@hq.dhs.gov

US Government Resource

http://ics-cert.us-cert.gov/advisories/ICSA-13-219-01

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

Timeline

No history available yet.